doc(python-3.1[012]): Add pending-upstream-fix CVE-2025-13837 (#27868)

python-3.10 Upstream Fix PR: python/cpython#142151
python-3.11 Upstream Fix PR: python/cpython#142150
python-3.12 Upstream Fix PR: python/cpython#142149

Related issues:
https://github.com/chainguard-dev/CVE-Dashboard/issues/49073
https://github.com/chainguard-dev/CVE-Dashboard/issues/48783
https://github.com/chainguard-dev/CVE-Dashboard/issues/49656

Signed-off-by: Vivian Rook <vivian.rook@chainguard.dev>

Author: vivian-rook

python-3.10.advisories.yaml

@@ -183,6 +183,10 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2025-12-11T09:16:30Z
+        type: pending-upstream-fix
+        data:
+          note: 'Upstream are actively working on, and have a PR open regarding this issue. Upstream maintainers will need to approve and merge the PR. Fix PR: https://github.com/python/cpython/pull/142151'
 
   - id: CGA-8659-6q2f-8j63
     aliases:

python-3.11.advisories.yaml

@@ -496,6 +496,10 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2025-12-11T09:15:56Z
+        type: pending-upstream-fix
+        data:
+          note: 'Upstream are actively working on, and have a PR open regarding this issue. Upstream maintainers will need to approve and merge the PR. Fix PR: https://github.com/python/cpython/pull/142150'
 
   - id: CGA-xpvj-6xv7-fgvq
     aliases:

python-3.12.advisories.yaml

@@ -21,6 +21,10 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2025-12-11T09:15:03Z
+        type: pending-upstream-fix
+        data:
+          note: 'Upstream are actively working on, and have a PR open regarding this issue. Upstream maintainers will need to approve and merge the PR. Fix PR: https://github.com/python/cpython/pull/142149'
 
   - id: CGA-335j-rwgj-885w
     aliases: